Detection Engineer

Job Description

Job Description

Job Summary : We are seeking a skilled Detection Engineer to join our team, focusing on implementing, configuring, and maintaining security detection rules and mechanisms within our customers' on-premise and Google Cloud environments. The ideal candidate will have extensive knowledge in Blue Team operations, day-to-day SOAR activities, Google Cloud Platform (GCP), security automation, and Kubernetes. Your expertise will help protect our customers' assets and ensure top-tier security for their cloud infrastructure.

Key Responsibilities :

• MITRE ATT&CK Framework : Utilize the MITRE ATT&CK Framework for threat detection creation, gap assessment, and analysis.
• Security Detection Implementation : Implement, configure, and maintain security detection rules and mechanisms, including intrusion detection, anomaly detection, and log analysis tools to identify and respond to security incidents.
• Security Operations : Play a critical role in daily security operations, including monitoring, tuning, analysis, and proactive threat hunting.
• Incident Response : Lead incident response efforts, investigate security incidents, conduct root cause analysis, and implement corrective measures.
• Kubernetes Incident Response : Apply expertise in Kubernetes for incident response and forensic analysis.
• Security Automation : Develop and maintain automation scripts and tools to streamline security detection operations and response.
• SOAR Playbooks : Build, design, run, and troubleshoot playbooks within a SOAR (Security Orchestration, Automation, and Response) solution to automate incident response processes.
• Documentation : Maintain comprehensive documentation of security detection configurations, incident response procedures, and investigations.
• Stay Current : Keep up-to-date with the latest security threats, vulnerabilities, and industry trends to proactively enhance security detection measures.

Qualifications :